|
273921
|
- |
|
privoxy
oracle
opensuse
|
privoxy
solaris
opensuse
|
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (abort) via a crafted chunk-encoded body.
|
CWE-20
Improper Input Validation
|
CVE-2015-1380
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273922
|
- |
|
arubanetworks
|
instant_access_point_firmware
|
Heap-based buffer overflow in Aruba Instant (IAP) with firmware before 4.0.0.7 and 4.1.x before 4.1.1.2 allows remote attackers to cause a denial of service (crash or reset to factory default) via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1348
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273923
|
- |
|
bluecoat
|
proxyclient
unified_agent
|
Blue Coat ProxyClient before 3.3.3.3 and 3.4.x before 3.4.4.10 and Unified Agent before 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle attackers to spoof…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1454
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273924
|
- |
|
fortinet
|
forticlient
|
The qm class in Fortinet FortiClient 5.2.3.091 for Android uses a hardcoded encryption key of FoRtInEt!AnDrOiD, which makes it easier for attackers to obtain passwords and possibly other sensitive da…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1453
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273925
|
- |
|
fortinet
|
fortios
|
The Control and Provisioning of Wireless Access Points (CAPWAP) daemon in Fortinet FortiOS 5.0 Patch 7 build 4457 allows remote attackers to cause a denial of service (locked CAPWAP Access Controller…
|
CWE-17
Code
|
CVE-2015-1452
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273926
|
- |
|
fortinet
|
fortios
|
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.0 Patch 7 build 4457 allow remote authenticated users to inject arbitrary web script or HTML via the (1) WTP Name or (2) WTP …
|
CWE-79
Cross-site Scripting
|
CVE-2015-1451
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273927
|
- |
|
restaurantbiller
|
restaurant_biller
|
SQL injection vulnerability in Restaurant Biller allows remote attackers to execute arbitrary SQL commands via the cid parameter in a category action to index.php.
|
CWE-89
SQL Injection
|
CVE-2015-1450
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273928
|
- |
|
siemens
|
ruggedcom_firmware
|
Buffer overflow in the integrated web server on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1449
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273929
|
- |
|
siemens
|
ruggedcom_firmware
|
The integrated management service on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before BS4…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1448
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273930
|
- |
|
10web
|
photo_gallery
|
SQL injection vulnerability in the Photo Gallery plugin before 1.2.11 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the asc_or_desc parameter in a create galle…
|
CWE-89
SQL Injection
|
CVE-2015-1393
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
